macOS Archives • Page 4 of 7 • Daily CyberSecurity

Clickfix Meets macOS: AMOS Variant Targets Spectrum Users in Credential Harvesting Campaign AMOS Stealer, macOS Malware

Clickfix Meets macOS: AMOS Variant Targets Spectrum Users in Credential Harvesting Campaign

Do Son June 6, 2025

Researchers at CloudSEK have uncovered a new variant of the Atomic macOS Stealer (AMOS) targeting macOS users...

WWDC 2025: Apple to Revamp SwiftUI for Richer App Experiences SwiftUI, Apple Development Swift on Android, Cross-Platform Development

WWDC 2025: Apple to Revamp SwiftUI for Richer App Experiences

Do Son June 4, 2025

During the upcoming WWDC 2025, in addition to unveiling updates to its major operating systems, Apple is...

PoC Reveals Apple Audio Zero-Day Enabling Remote Code Execution via Malicious Media Files CoreAudio Vulnerability, Apple Zero-Day

PoC Reveals Apple Audio Zero-Day Enabling Remote Code Execution via Malicious Media Files

Do Son June 2, 2025

Apple has patched a high-severity zero-day vulnerability in CoreAudio, the framework responsible for audio playback and processing...

Apache Tomcat Flaw Allows Security Bypass on Case-Insensitive Systems Apache Tomcat vulnerability CGI servlet bypass

Apache Tomcat Flaw Allows Security Bypass on Case-Insensitive Systems

Do Son May 30, 2025

The Apache Software Foundation has disclosed a low-severity security vulnerability affecting multiple versions of the Apache Tomcat...

New macOS Infostealer: AppleProcessHub Uses Objective-C to Steal Developer Data

Do Son May 27, 2025

A stealthy new macOS infostealer named AppleProcessHub has attracted a lot of attention from security experts, with...

iOS Kernel Vulnerability Exposed in Public PoC – Potential Jailbreak and Privilege Escalation Risk iOS Kernel Vulnerability, Privilege Escalation

iOS Kernel Vulnerability, Privilege Escalation

iOS Kernel Vulnerability Exposed in Public PoC – Potential Jailbreak and Privilege Escalation Risk

Do Son May 16, 2025

A newly surfaced proof of concept (PoC) has reignited attention around a critical iOS kernel vulnerability—CVE-2023-41992—that Apple...

macOS 16 to Get iOS-Style Clipboard Permissions for Enhanced Privacy AI Infrastructure macOS Security Clipboard Privacy

macOS 16 to Get iOS-Style Clipboard Permissions for Enhanced Privacy

Do Son May 13, 2025

Since the release of iOS 14, Apple has implemented restrictions on clipboard access within iPhones. By default,...

PoC Released: CVE-2025-31258 Sandbox Escape in macOS via RemoteViewServices RemoteViewServices macOS Sandbox Escape

PoC Released: CVE-2025-31258 Sandbox Escape in macOS via RemoteViewServices

Do Son May 13, 2025

Apple has released a patch for a newly disclosed vulnerability in macOS, tracked as CVE-2025-31258, that could...

Blackout Mode: Microsoft Teams to Block Screenshots in Meetings Teams screenshot, meeting security

Blackout Mode: Microsoft Teams to Block Screenshots in Meetings

Do Son May 12, 2025

Microsoft is currently introducing a new feature for Microsoft Teams called “Prevent Screen Capture“. Once enabled, this...

Chrome Crashing on Windows, Android, and macOS; iOS Unaffected Chrome Vulnerability CVE-2024-4761 - Google Sell Chrome CVE-2025-1920 Chrome Crash, Browser Issue

Chrome Vulnerability CVE-2024-4761 - Google Sell Chrome CVE-2025-1920 Chrome Crash, Browser Issue

Chrome Crashing on Windows, Android, and macOS; iOS Unaffected

Do Son May 10, 2025

Since a month ago, users have been reporting abnormal crashes when launching Chrome—immediate crash alerts appear upon...

Atomic Stealer Malware Targets macOS Users with Fake Evernote Crack Atomic Stealer, macOS Malware

Atomic Stealer Malware Targets macOS Users with Fake Evernote Crack

Do Son May 10, 2025

A new cyberattack is targeting macOS users, with the Atomic Stealer malware being distributed under the guise...

CVE-2024-2787: Apple Archive Flaw Enables Arbitrary File Write and Gatekeeper Bypass, PoC Releases CVE-2024-27876, Apple Archive Gatekeeper bypass

CVE-2024-27876, Apple Archive Gatekeeper bypass

CVE-2024-2787: Apple Archive Flaw Enables Arbitrary File Write and Gatekeeper Bypass, PoC Releases

Do Son April 25, 2025

A newly disclosed vulnerability in Apple’s proprietary libAppleArchive library, tracked as CVE-2024-27876, enables attackers to achieve arbitrary...

PasivRobber: In-Depth Analysis of Sophisticated macOS Malware GuLoader Malware CloudEye Obfuscation npm, malware Ethereum, npm supply chain OAST techniques StilachiRAT macOS Malware PasivRobber

GuLoader Malware CloudEye Obfuscation npm, malware Ethereum, npm supply chain OAST techniques StilachiRAT macOS Malware PasivRobber

PasivRobber: In-Depth Analysis of Sophisticated macOS Malware

Do Son April 16, 2025

A recent discovery by Kandji’s research team has brought to light a sophisticated threat targeting macOS systems:...

Albabat Ransomware Group Eyes Expansion, Leverages GitHub for Operations AI ransomware, PromptLock Against Ransomware - RECOPE Ransomware Attack

AI ransomware, PromptLock Against Ransomware - RECOPE Ransomware Attack

Albabat Ransomware Group Eyes Expansion, Leverages GitHub for Operations

Do Son March 25, 2025

The Albabat ransomware group is evolving, signaling a potential expansion of its targets and a streamlined operational...

XCSSET Malware Returns with Enhanced Obfuscation and Persistence Techniques XCSSET macOS malware

XCSSET Malware Returns with Enhanced Obfuscation and Persistence Techniques

Do Son March 13, 2025

Microsoft Threat Intelligence has discovered a new variant of the XCSSET malware, a sophisticated threat targeting macOS...

CVE-2025-24201: Apple Issues Emergency Patches for Actively Exploited Zero-Day Vulnerability Apple Background Security CVE-2026-20643 Apple Background Security Improvement Apple Backdoor Apple Lawsuit, Data Exfiltration CVE-2024-44131 - CVE-2025-24118 PoC

Apple Background Security CVE-2026-20643 Apple Background Security Improvement Apple Backdoor Apple Lawsuit, Data Exfiltration CVE-2024-44131 - CVE-2025-24118 PoC

CVE-2025-24201: Apple Issues Emergency Patches for Actively Exploited Zero-Day Vulnerability

Do Son March 11, 2025

Apple has released urgent security updates to address a critical zero-day vulnerability in its WebKit browser engine,...

Malicious Go Packages Target Developers with Hidden Loader Malware on Linux and macOS

Do Son March 4, 2025

Researchers from Socket have uncovered a malicious typosquatting campaign infiltrating the Go ecosystem, using fraudulent packages that...

North Korean Hackers Deploy RustDoor and Koi Stealer to Target Cryptocurrency Developers on macOS

Do Son February 27, 2025

A recent cybersecurity report from Unit 42 has revealed a new wave of North Korean-linked cyberattacks targeting...

XCSSET Malware Returns with Enhanced Capabilities to Target macOS Users macOS malware 2024 XCSSET

XCSSET Malware Returns with Enhanced Capabilities to Target macOS Users

Do Son February 17, 2025

Microsoft Threat Intelligence has discovered a new variant of the XCSSET malware targeting macOS users. This sophisticated...

North Korean-Linked Malware ‘FlexibleFerret’ Expands macOS Attack Surface North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean-Linked Malware ‘FlexibleFerret’ Expands macOS Attack Surface

Do Son February 5, 2025

Cybersecurity researchers at SentinelOne have uncovered new macOS malware variants attributed to North Korean threat actors, expanding...

Critical Alert 3 Active Exploits Detected Today

Critical Alert

macOS

WWDC 2025: Apple to Revamp SwiftUI for Richer App Experiences

PoC Reveals Apple Audio Zero-Day Enabling Remote Code Execution via Malicious Media Files

Apache Tomcat Flaw Allows Security Bypass on Case-Insensitive Systems

New macOS Infostealer: AppleProcessHub Uses Objective-C to Steal Developer Data

iOS Kernel Vulnerability Exposed in Public PoC – Potential Jailbreak and Privilege Escalation Risk

macOS 16 to Get iOS-Style Clipboard Permissions for Enhanced Privacy

PoC Released: CVE-2025-31258 Sandbox Escape in macOS via RemoteViewServices

Blackout Mode: Microsoft Teams to Block Screenshots in Meetings

Chrome Crashing on Windows, Android, and macOS; iOS Unaffected

Atomic Stealer Malware Targets macOS Users with Fake Evernote Crack

CVE-2024-2787: Apple Archive Flaw Enables Arbitrary File Write and Gatekeeper Bypass, PoC Releases

PasivRobber: In-Depth Analysis of Sophisticated macOS Malware

Albabat Ransomware Group Eyes Expansion, Leverages GitHub for Operations

XCSSET Malware Returns with Enhanced Obfuscation and Persistence Techniques

CVE-2025-24201: Apple Issues Emergency Patches for Actively Exploited Zero-Day Vulnerability

Malicious Go Packages Target Developers with Hidden Loader Malware on Linux and macOS

North Korean Hackers Deploy RustDoor and Koi Stealer to Target Cryptocurrency Developers on macOS

XCSSET Malware Returns with Enhanced Capabilities to Target macOS Users

North Korean-Linked Malware ‘FlexibleFerret’ Expands macOS Attack Surface